Event-Stream Package Security Update

1 Kicks, 2466 Views

November 26, 2018 Kai Maetzel, @kaimaetzel You might already have heard that the popular event-stream NPM package includes a malicious dependency. The details can be found in the following GitHub issue: https://github.com/dominictarr/event-stream/issues/116. This vulnerability has been in existence for about two months but was only recently discovered.